Author Archives: Ravie Lakshmanan

Uber, in an update, said there is “no evidence” that users’ private information was compromised in a breach of its internal computer systems that was discovered late Thursday.
“We have no evidence that the incident involved access to sensitive user da… Continue reading Uber Claims No Sensitive Data Exposed in Latest Breach… But There’s More to This→

Password management solution LastPass shared more details pertaining to the security incident last month, disclosing that the threat actor had access to its systems for a four-day period in August 2022.
“There is no evidence of any threat actor activi… Continue reading Hackers Had Access to LastPass’s Development Systems for Four Days→

Cybersecurity researchers have exposed new connections between a widely used pay-per-install (PPI) malware service known as PrivateLoader and another PPI service dubbed ruzki.
“The threat actor ruzki (aka les0k, zhigalsz) advertises their PPI service … Continue reading Researchers Find Link b/w PrivateLoader and Ruzki Pay-Per-Install Services→

A threat with a North Korea nexus has been found leveraging a “novel spear phish methodology” that involves making use of trojanized versions of the PuTTY SSH and Telnet client.
Google-owned threat intelligence firm Mandiant attributed the new campaig… Continue reading North Korean Hackers Spreading Trojanized Versions of PuTTY Client Application→

Malicious actors such as Kinsing are taking advantage of both recently disclosed and older security flaws in Oracle WebLogic Server to deliver cryptocurrency-mining malware.
Cybersecurity company Trend Micro said it found the financially-motivated gro… Continue reading Hackers Targeting WebLogic Servers and Docker APIs for Mining Cryptocurrencies→

Ride hailing giant Uber disclosed Thursday it’s responding to a cybersecurity incident involving a breach of its network and that it’s in touch with law enforcement authorities.
The New York Times first reported the incident.  The company pointed to i… Continue reading Uber Says It’s Investigating a Potential Breach of Its Computer Systems→

Gamers looking for cheats on YouTube are being targeted with links to malicious password-protected archive files designed to install the RedLine Stealer malware and crypto miners on compromised machines.
“The videos advertise cheats and cracks and pro… Continue reading Researchers Warn of Self-Spreading Malware Targeting Gamers via YouTube→

An ongoing espionage campaign operated by the Russia-linked Gamaredon group is targeting employees of Ukrainian government, defense, and law enforcement agencies with a piece of custom-made information stealing malware.
“The adversary is using phishin… Continue reading Russian Gamaredon Hackers Target Ukrainian Government Using Info-Stealing Malware→

A threat actor tracked under the moniker Webworm has been linked to bespoke Windows-based remote access trojans, some of which are said to be in pre-deployment or testing phases.
“The group has developed customized versions of three older remote acces… Continue reading Webworm Hackers Using Modified RATs in Latest Cyber Espionage Attacks→

The U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) on Wednesday announced sweeping sanctions against ten individuals and two entities backed by Iran’s Islamic Revolutionary Guard Corps (IRGC) for their involvement in ransomware att… Continue reading U.S. Charges 3 Iranian Hackers and Sanctions Several Others Over Ransomware Attacks→